On Mon, Jan 07, 2002 at 06:58:07PM +0100, Tomas Svensson wrote:
> 1) Non-blocking SSL_accept()
>
> SSL_accept() always returns -1 and SSL_ERROR_WANT_READ (via
> SSL_get_error()) but when I do SSL_read() in response to the first
> error, [...]
Why do you do that? Please read the SSL_get_error m
--On Friday, January 25, 2002 8:12 AM +0100 Lutz Jaenicke
<[EMAIL PROTECTED]> wrote:
> On Thu, Jan 24, 2002 at 05:14:04PM -0500, Rob Beckers wrote:
>> > From what I understand of the SSL/TLS protocol only the server's
>> > public key
>> (from the server cert) is used during the handshake. Th
on 1/24/02 8:21 AM, [EMAIL PROTECTED] purportedly said:
>
>
> Does anyone kwow about ssl proxy? and how can I find it?
> The programm does know nothing about ssl and the sslproxy does the
> job.
> I want to connect to another ssl proxy which is based on the above
> programm.
> Sorry if my quest
"James Yonan" <[EMAIL PROTECTED]> writes:
> What is the best way to authenticate an encrypted packet in a peer-to-peer
> application that uses a symmetric cipher and a shared private key?
Tehre's been a lot of argument about this.
There are some theoretical attacks that suggest that you should
ha
Hi,
I have battled through the various mailing lists and cant find an answer
to the problem
of incompatibility between the SSL des.h and the kerberos (MIT) des.h as
dished out
with Solaris 2.6.
When compiling Samba 2.2.2 with SSL .96 I get :
Compiling lib/util.c
In file included from /opt/OPENssl/
Hi
I've made some modifications to 0.9.7-dev, which I think may
be of general interest. Patch is attached. Short summary:
* Fix a crashbug in hwcrhk_load_privkey()
* Fix a crashbug and a logic bug in hwcrhk_load_pubkey()
* make openssl rsautl -sign, -verify, -encrypt and -decrypt
work with -e
Martin Leung wrote:
>
> Hi,
>
> Does anyone know whether the "openssl ca" command supports URI in form of
> ldap directory name in authorityInfoAccess? If yes, what is the correct
> syntax?
>
> I tried:
>
> authorityInfoAccess=caIssuers;URI:ldap:///CN=My Certificate Authority,CN
> =AIA,CN=Publ
What is the best way to authenticate an encrypted packet in a peer-to-peer
application that uses a symmetric cipher and a shared private key?
I can think of several ways such as:
(1) HMAC(CBC(timestamp, plaintext)), CBC(timestamp, plaintext)
(2) CBC(HMAC(timestamp, plaintext), timestamp, plainte
Stéphane Lemaire wrote:
>
> Hi,
>
> I wish improve my question. My CRL contains expirated and revokated
> Certificates. I wish that my CRL contains only the expired certificates
> which are technically valid and not expirated certificates. I do not wish
> that the size of my CRL increases withou
Yep.. The "-L" option is missing - which again means that the configure
script did not run correctly (or till completion).. Can u pl. post the
config.log file ??. Also, are you setting anything specific in ur
environment (SHLIB_PATH etc)..
Alternatively, YOu can possibly try "./config +Z -L$OPENSS
Hi,
I wish improve my question. My CRL contains expirated and revokated
Certificates. I wish that my CRL contains only the expired certificates
which are technically valid and not expirated certificates. I do not wish
that the size of my CRL increases without end.
Did somebody already find a so
Hi all,
I need to add an UPN to the subjectAltName cert. extension , i.e.
X509v3 Subject Alternative Name:
othername:Principal Name=(UPN)
where content of UPN is UTF-8 encoded string. Any idea?
Rgds.
Martin
__
on 1/23/02 7:07 PM, [EMAIL PROTECTED] purportedly said:
> On Wed, 23 Jan 2002 [EMAIL PROTECTED] wrote:
>
>> I'm using SSLeay along with Open SSl to retrieve https pages via SSL.pm.
>> I'm not using a proxy, but in the runtime I get the familiar "unitialized
>> variable" message being displayed f
Does anyone kwow about ssl proxy? and how can I find it?
The programm does know nothing about ssl and the sslproxy does the
job.
I want to connect to another ssl proxy which is based on the above
programm.
Sorry if my question has no mean.
Hi,
Well not to beat a dead horse about this, and after going through the
older threads regarding shared libraries under HPUX 11 and I tried a few
things, but it ultimately didn't quite work right.
What I had to do is do a number of things by hand. Build the thing with
no modifications and the
Hi,
I have been following the thread about having problems with building
OpenSSL under HPUX when creating shared libraries.
I am also having the same problem. I created them just fine under Linux
and Solaris 8. But HPUX 11.11 (11i) with either GCC 2.95.3 or HP's Ansi
C compiler, I have problem
Hi Philippe,
For IIS 5, you can:
- generate key and cert using openssl req/ca
- wrap them to a pkcs12 file, i.e. openssl pkcs12
- in the web server, import the pfx file into Local Computer/Personal store
using Certificate MMC
- select the cert from IIS mmc snap-in using Assign new cert.
Rgds.
M
17 matches
Mail list logo
